SlideShare a Scribd company logo

Mobile threat

N
Neelakanta Kalla

Threat to Strategic Information Through Open Mobile Platforms and solution(s).

Technology
1 of 12
Download to read offline
Threat to Strategic Information Through Open Mobile Platforms and solution(s). by K Neelakanta Sheshadri
The Threat(S) ● Corporate snooping is now an established fact of life. ● Ubiquitous, vulnerable and open platform phones can turn the threat into a real menace.1 ● Android, iOs, etc. have vulnerabilities which pop out every minute, added to this set is their use on GSM networks.2 ● Every country and individual is concerned about both state and non-state snoopers.
First Response... ● Indian Army is establishing a full fledged Mobile Cellular Communications System (MCCS) as part of its AWAN plan. CDMA is the underlying platform.3 TCS has already established IP based AWAN for Corps of Signals (indigenous ?) .4 ● Blackberry is the only widely known corporate level secure mobile platform. And most users do not have one. ● Before the last Loksabha elections BJP hired Mobiliya to prevent another snoop-gate.
● Mobiliya is already approaching MoD for pushing its Secure Phone a.k.a “Dark Phone”. – The claims are that there are no indigenous contenders and only Cyanogen US, Silent Circle – Spain and Cellrox – Israel are its global contenders. ● Android is a big and thriving market, but the underlying Linux layer and VMs continue to be the same with inherent vulnerabilities.5
What is in market already? ● Cellrox model
● Mobilya's model of secure phone uses OS differentiation. That is, packs two VMs in one phone. Device encryption, Applevel security, Native single sign on..etc
Current Scenario ● Cellrox's virtualization is a clear compromise on processing cost per currency. (Sand- boxing a sandbox on an OS). ● Mobiliya and Cyanogen just run two parallel sandboxes. ● Both use ZRTP to prevent man in the middle attack, encrypted calls and messaging. ● Silent Circle is a service provider mostly restricted to Spain. ● Almost every day vulnerabilities crop up in Virtual Machines. ● Provide no hardware depended unmodifiable code. Everything is software and multi- vendor supported, includes any one with a valid gmail or facebook account. ● Operate on GSM in India providing little or no encryption if at all. ● Availability of “ROOTED” OS Modifications from amateurs and threats from non-registered applications. ● All keep quiet on phone being stolen by professional device hackers.
The idea... ASIC/FPGA based CDMA Hardware platform** CORE FIRMWARE SWITCH LAYER CORTEX BASED HIGH PERFORMANCE PLATFORM FOR VM *
Prospects of implementation *Android being a de-facto accepted OS has to be supported. ** The proposed hardware layer would have an ASIC or FPGA core with CDMA, ZRTP and remote self-destruct (multi erase and write) functionality.
Conclusion ● The above stated may be implemented on platforms like Cyclone V type (FPGA+ARM) SoCs later converted into ASIC -- reducing time to market. ● One of the biggest advantages of this architecture is that there is no compromise on processing or security. ● Separation of strategic and personal layers of communication.
Recent events

Recommended

#911#FirefoxOS available in all smartphones for your #safety
#911#FirefoxOS available in all smartphones for your #safety#911#FirefoxOS available in all smartphones for your #safety
#911#FirefoxOS available in all smartphones for your #safetyitspeciation
 
Motorola Profile
Motorola ProfileMotorola Profile
Motorola ProfileJesse Bacon
 
5 g architecture and application
5 g architecture and application5 g architecture and application
5 g architecture and applicationMahmudul Hasan
 
Phone for Enterprises Business Corporations Governments
Phone for Enterprises Business Corporations GovernmentsPhone for Enterprises Business Corporations Governments
Phone for Enterprises Business Corporations GovernmentsJohn Adam
 
MWC 2012 (short rewiev)
MWC 2012 (short rewiev)MWC 2012 (short rewiev)
MWC 2012 (short rewiev)Oleksandr Kryvoshapka
 
5 g.ppt
5 g.ppt5 g.ppt
5 g.pptSruthiAk
 
The T.E.E. + eSIM Dual Roots of Trust
The T.E.E. + eSIM Dual Roots of TrustThe T.E.E. + eSIM Dual Roots of Trust
The T.E.E. + eSIM Dual Roots of TrustRivetz
 
WinDays XV - Programming Windows small IoT devices (ARM and x86, diverse hard...
WinDays XV - Programming Windows small IoT devices (ARM and x86, diverse hard...WinDays XV - Programming Windows small IoT devices (ARM and x86, diverse hard...
WinDays XV - Programming Windows small IoT devices (ARM and x86, diverse hard...Catalin Gheorghiu
 

Recommended

#911#FirefoxOS available in all smartphones for your #safety
#911#FirefoxOS available in all smartphones for your #safety#911#FirefoxOS available in all smartphones for your #safety
#911#FirefoxOS available in all smartphones for your #safetyitspeciation
 
Motorola Profile
Motorola ProfileMotorola Profile
Motorola ProfileJesse Bacon
 
5 g architecture and application
5 g architecture and application5 g architecture and application
5 g architecture and applicationMahmudul Hasan
 
Phone for Enterprises Business Corporations Governments
Phone for Enterprises Business Corporations GovernmentsPhone for Enterprises Business Corporations Governments
Phone for Enterprises Business Corporations GovernmentsJohn Adam
 
MWC 2012 (short rewiev)
MWC 2012 (short rewiev)MWC 2012 (short rewiev)
MWC 2012 (short rewiev)Oleksandr Kryvoshapka
 
5 g.ppt
5 g.ppt5 g.ppt
5 g.pptSruthiAk
 
The T.E.E. + eSIM Dual Roots of Trust
The T.E.E. + eSIM Dual Roots of TrustThe T.E.E. + eSIM Dual Roots of Trust
The T.E.E. + eSIM Dual Roots of TrustRivetz
 
WinDays XV - Programming Windows small IoT devices (ARM and x86, diverse hard...
WinDays XV - Programming Windows small IoT devices (ARM and x86, diverse hard...WinDays XV - Programming Windows small IoT devices (ARM and x86, diverse hard...
WinDays XV - Programming Windows small IoT devices (ARM and x86, diverse hard...Catalin Gheorghiu
 
iParanoid: an IMSI Catcher - Stingray Intrusion Detection System
iParanoid: an IMSI Catcher - Stingray Intrusion Detection System iParanoid: an IMSI Catcher - Stingray Intrusion Detection System
iParanoid: an IMSI Catcher - Stingray Intrusion Detection SystemLuca Bongiorni
 
SMART PHONE
SMART PHONE SMART PHONE
SMART PHONE kaushalDesai22
 
Mobile Banking Channel Security - Cyber Security Conference 2011
Mobile Banking Channel Security - Cyber Security Conference 2011Mobile Banking Channel Security - Cyber Security Conference 2011
Mobile Banking Channel Security - Cyber Security Conference 2011Filip Maertens
 
IoT eSIM Test Bed
IoT eSIM Test BedIoT eSIM Test Bed
IoT eSIM Test BedCellnetrix
 
J.-P. Seifert; Security-Aware Android Applications for the Enterprise
J.-P. Seifert; Security-Aware Android Applications for the EnterpriseJ.-P. Seifert; Security-Aware Android Applications for the Enterprise
J.-P. Seifert; Security-Aware Android Applications for the EnterpriseDroidcon Berlin
 
Info security - mobile approach
Info security - mobile approachInfo security - mobile approach
Info security - mobile approachEY Belgium
 
Mbs f41 a
Mbs f41 aMbs f41 a
Mbs f41 aSelectedPresentations
 
Securing hand held computing devices
Securing hand held computing devicesSecuring hand held computing devices
Securing hand held computing devicesjraja01
 
Z0C (Pitch Deck)
Z0C (Pitch Deck)Z0C (Pitch Deck)
Z0C (Pitch Deck)PROBOTEK
 
Building trust in IoT, by Gemalto
Building trust in IoT, by GemaltoBuilding trust in IoT, by Gemalto
Building trust in IoT, by GemaltoHaider Iqbal
 
Micro Technologies India ltd
Micro Technologies India ltdMicro Technologies India ltd
Micro Technologies India ltdNehul Gupta
 
Short 1100 Jart Armin - The Pocket Botnet
Short 1100 Jart Armin - The Pocket BotnetShort 1100 Jart Armin - The Pocket Botnet
Short 1100 Jart Armin - The Pocket BotnetUISGCON
 
Short 11-00 Jart Armin - The Pocket Botnet
Short 11-00 Jart Armin - The Pocket BotnetShort 11-00 Jart Armin - The Pocket Botnet
Short 11-00 Jart Armin - The Pocket BotnetUISGCON
 
C0c0n 2011 mobile security presentation v1.2
C0c0n 2011 mobile security presentation v1.2C0c0n 2011 mobile security presentation v1.2
C0c0n 2011 mobile security presentation v1.2Santosh Satam
 
GSM Security
GSM SecurityGSM Security
GSM Securitysmita gupta
 
gsm based security system
gsm based security systemgsm based security system
gsm based security systemnayandey
 
Chapter 3_Cyber Security-ccdf.pptx
Chapter 3_Cyber Security-ccdf.pptxChapter 3_Cyber Security-ccdf.pptx
Chapter 3_Cyber Security-ccdf.pptx1SI19IS064TEJASS
 
Mobile security trends
Mobile security trendsMobile security trends
Mobile security trendsKen Huang
 
Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...
Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...
Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...viaForensics
 
Mobile cloning
Mobile cloningMobile cloning
Mobile cloningVIKASH MEWAL
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions
 

More Related Content

Similar to Mobile threat

iParanoid: an IMSI Catcher - Stingray Intrusion Detection System
iParanoid: an IMSI Catcher - Stingray Intrusion Detection System iParanoid: an IMSI Catcher - Stingray Intrusion Detection System
iParanoid: an IMSI Catcher - Stingray Intrusion Detection SystemLuca Bongiorni
 
Mobile Banking Channel Security - Cyber Security Conference 2011
Mobile Banking Channel Security - Cyber Security Conference 2011Mobile Banking Channel Security - Cyber Security Conference 2011
Mobile Banking Channel Security - Cyber Security Conference 2011Filip Maertens
 
IoT eSIM Test Bed
IoT eSIM Test BedIoT eSIM Test Bed
IoT eSIM Test BedCellnetrix
 
J.-P. Seifert; Security-Aware Android Applications for the Enterprise
J.-P. Seifert; Security-Aware Android Applications for the EnterpriseJ.-P. Seifert; Security-Aware Android Applications for the Enterprise
J.-P. Seifert; Security-Aware Android Applications for the EnterpriseDroidcon Berlin
 
Info security - mobile approach
Info security - mobile approachInfo security - mobile approach
Info security - mobile approachEY Belgium
 
Securing hand held computing devices
Securing hand held computing devicesSecuring hand held computing devices
Securing hand held computing devicesjraja01
 
Z0C (Pitch Deck)
Z0C (Pitch Deck)Z0C (Pitch Deck)
Z0C (Pitch Deck)PROBOTEK
 
Building trust in IoT, by Gemalto
Building trust in IoT, by GemaltoBuilding trust in IoT, by Gemalto
Building trust in IoT, by GemaltoHaider Iqbal
 
Micro Technologies India ltd
Micro Technologies India ltdMicro Technologies India ltd
Micro Technologies India ltdNehul Gupta
 
Short 1100 Jart Armin - The Pocket Botnet
Short 1100 Jart Armin - The Pocket BotnetShort 1100 Jart Armin - The Pocket Botnet
Short 1100 Jart Armin - The Pocket BotnetUISGCON
 
Short 11-00 Jart Armin - The Pocket Botnet
Short 11-00 Jart Armin - The Pocket BotnetShort 11-00 Jart Armin - The Pocket Botnet
Short 11-00 Jart Armin - The Pocket BotnetUISGCON
 
C0c0n 2011 mobile security presentation v1.2
C0c0n 2011 mobile security presentation v1.2C0c0n 2011 mobile security presentation v1.2
C0c0n 2011 mobile security presentation v1.2Santosh Satam
 
gsm based security system
gsm based security systemgsm based security system
gsm based security systemnayandey
 
Chapter 3_Cyber Security-ccdf.pptx
Chapter 3_Cyber Security-ccdf.pptxChapter 3_Cyber Security-ccdf.pptx
Chapter 3_Cyber Security-ccdf.pptx1SI19IS064TEJASS
 
Mobile security trends
Mobile security trendsMobile security trends
Mobile security trendsKen Huang
 
Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...
Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...
Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...viaForensics
 

Similar to Mobile threat (20)

iParanoid: an IMSI Catcher - Stingray Intrusion Detection System
iParanoid: an IMSI Catcher - Stingray Intrusion Detection System iParanoid: an IMSI Catcher - Stingray Intrusion Detection System
iParanoid: an IMSI Catcher - Stingray Intrusion Detection System
 
SMART PHONE
SMART PHONE SMART PHONE
SMART PHONE
 
Mobile Banking Channel Security - Cyber Security Conference 2011
Mobile Banking Channel Security - Cyber Security Conference 2011Mobile Banking Channel Security - Cyber Security Conference 2011
Mobile Banking Channel Security - Cyber Security Conference 2011
 
IoT eSIM Test Bed
IoT eSIM Test BedIoT eSIM Test Bed
IoT eSIM Test Bed
 
J.-P. Seifert; Security-Aware Android Applications for the Enterprise
J.-P. Seifert; Security-Aware Android Applications for the EnterpriseJ.-P. Seifert; Security-Aware Android Applications for the Enterprise
J.-P. Seifert; Security-Aware Android Applications for the Enterprise
 
Info security - mobile approach
Info security - mobile approachInfo security - mobile approach
Info security - mobile approach
 
Mbs f41 a
Mbs f41 aMbs f41 a
Mbs f41 a
 
Securing hand held computing devices
Securing hand held computing devicesSecuring hand held computing devices
Securing hand held computing devices
 
Z0C (Pitch Deck)
Z0C (Pitch Deck)Z0C (Pitch Deck)
Z0C (Pitch Deck)
 
Building trust in IoT, by Gemalto
Building trust in IoT, by GemaltoBuilding trust in IoT, by Gemalto
Building trust in IoT, by Gemalto
 
Micro Technologies India ltd
Micro Technologies India ltdMicro Technologies India ltd
Micro Technologies India ltd
 
Short 1100 Jart Armin - The Pocket Botnet
Short 1100 Jart Armin - The Pocket BotnetShort 1100 Jart Armin - The Pocket Botnet
Short 1100 Jart Armin - The Pocket Botnet
 
Short 11-00 Jart Armin - The Pocket Botnet
Short 11-00 Jart Armin - The Pocket BotnetShort 11-00 Jart Armin - The Pocket Botnet
Short 11-00 Jart Armin - The Pocket Botnet
 
C0c0n 2011 mobile security presentation v1.2
C0c0n 2011 mobile security presentation v1.2C0c0n 2011 mobile security presentation v1.2
C0c0n 2011 mobile security presentation v1.2
 
GSM Security
GSM SecurityGSM Security
GSM Security
 
gsm based security system
gsm based security systemgsm based security system
gsm based security system
 
Chapter 3_Cyber Security-ccdf.pptx
Chapter 3_Cyber Security-ccdf.pptxChapter 3_Cyber Security-ccdf.pptx
Chapter 3_Cyber Security-ccdf.pptx
 
Mobile security trends
Mobile security trendsMobile security trends
Mobile security trends
 
Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...
Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...
Why mobile-should-stop-worrying-learn-love-root-andrew-hoog-viaforensics-rsa-...
 
Mobile cloning
Mobile cloningMobile cloning
Mobile cloning
 

Recently uploaded

The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxLBM Solutions
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersThousandEyes
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?XfilesPro
 

Recently uploaded (20)

The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping Elbows
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptx
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptx
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?
 

Mobile threat

  • 1. Threat to Strategic Information Through Open Mobile Platforms and solution(s). by K Neelakanta Sheshadri
  • 2. The Threat(S) ● Corporate snooping is now an established fact of life. ● Ubiquitous, vulnerable and open platform phones can turn the threat into a real menace.1 ● Android, iOs, etc. have vulnerabilities which pop out every minute, added to this set is their use on GSM networks.2 ● Every country and individual is concerned about both state and non-state snoopers.
  • 3.
  • 4. First Response... ● Indian Army is establishing a full fledged Mobile Cellular Communications System (MCCS) as part of its AWAN plan. CDMA is the underlying platform.3 TCS has already established IP based AWAN for Corps of Signals (indigenous ?) .4 ● Blackberry is the only widely known corporate level secure mobile platform. And most users do not have one. ● Before the last Loksabha elections BJP hired Mobiliya to prevent another snoop-gate.
  • 5. ● Mobiliya is already approaching MoD for pushing its Secure Phone a.k.a “Dark Phone”. – The claims are that there are no indigenous contenders and only Cyanogen US, Silent Circle – Spain and Cellrox – Israel are its global contenders. ● Android is a big and thriving market, but the underlying Linux layer and VMs continue to be the same with inherent vulnerabilities.5
  • 6. What is in market already? ● Cellrox model
  • 7. ● Mobilya's model of secure phone uses OS differentiation. That is, packs two VMs in one phone. Device encryption, Applevel security, Native single sign on..etc
  • 8. Current Scenario ● Cellrox's virtualization is a clear compromise on processing cost per currency. (Sand- boxing a sandbox on an OS). ● Mobiliya and Cyanogen just run two parallel sandboxes. ● Both use ZRTP to prevent man in the middle attack, encrypted calls and messaging. ● Silent Circle is a service provider mostly restricted to Spain. ● Almost every day vulnerabilities crop up in Virtual Machines. ● Provide no hardware depended unmodifiable code. Everything is software and multi- vendor supported, includes any one with a valid gmail or facebook account. ● Operate on GSM in India providing little or no encryption if at all. ● Availability of “ROOTED” OS Modifications from amateurs and threats from non-registered applications. ● All keep quiet on phone being stolen by professional device hackers.
  • 9. The idea... ASIC/FPGA based CDMA Hardware platform** CORE FIRMWARE SWITCH LAYER CORTEX BASED HIGH PERFORMANCE PLATFORM FOR VM *
  • 10. Prospects of implementation *Android being a de-facto accepted OS has to be supported. ** The proposed hardware layer would have an ASIC or FPGA core with CDMA, ZRTP and remote self-destruct (multi erase and write) functionality.
  • 11. Conclusion ● The above stated may be implemented on platforms like Cyclone V type (FPGA+ARM) SoCs later converted into ASIC -- reducing time to market. ● One of the biggest advantages of this architecture is that there is no compromise on processing or security. ● Separation of strategic and personal layers of communication.